Guest User!

You are not Sophos Staff.

Thread Info
  • State Verified Answer
  • Locked Locked
  • Replies 13 replies
  • Subscribers 5 subscribers
  • Views 33384 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Change Computer Owner on SDE

nsg1974

How can you change the owner of a computer in Sophos Disk Encryption?  The first user to logon becomes the owner, but what happens when this user leaves and the laptop is passed on?  Can you change the owner without reinstalling SDE? 

The user help refers to the first user to login becoming the owner as the "default setting" and that "the security officer can also define the owner of a computer via a policy setting".  I can't find anything relevant in any of the SDE policies.  Does anyone know if this is possible or if (as I suspect ) the help refers to features in the full Safeguard Enterprise product and hasn't been updated for SDE?

:2586


This thread was automatically locked due to age.
  • 0

    Hi,

    in SGE 6.x (and SGN 6 standalone clients)  there is no "owner" in regards to the the SGN status, all users with a valid "User - Machine Assignment" have the status "SGN User".

    It is possible to assign a policy of the type Machine Settings to the client that allows such users deleting other users who are currently able to authenticate at the POA. After activating this setting the required dialog can be found on the client (tray icon -> User Machine Assignments).

    Hope that helps.

    MS

    :35683
  • 0

    Actually I found that there is an Owner setting in SGE DE 6.0; the method to change the owner that seems to work is thus:

    1) Boot the computer, get through PoA either using Recovery, or have a user who has a certificate on the computer login with the "Passthrough to Windows" unchecked

    2) Have the user you want to be the owner login at the Windows prompt (this assumes domain network connection of course)

    3) Synchronize the SGE client

    4) Under the SGE Management console, go to Users and Computers and navigate through the AD tree to the computer itself, and click on it

    5) On the right side you will see tabs for Inventory, RSOP and Users. Select this Users tab. You can now drag a user from the right of this pane (under Available Users) into it and Check/Uncheck the "User is Owner" box.

    6) Save when you're done.

    :35687
  • 0

    The process you described is correct for SGN 6 managed clients. My post was referring to the possibilities on unmanaged clients (SGE 6 and SGN 6 standalone) as that was the topic of the initial thread.

    Cheers

    MS

    :35689
Unfiltered HTML